Strategy11 Formidable_forms

8 CVEs affecting Strategy11 Formidable_forms. Latest disclosed: 2024-12-13. Critical: 0, High: 2.

Top CVEs affecting Strategy11 Formidable_forms
CVESeverityScorePublishedSummary
CVE-2023-2877High8.82023-06-27The Formidable Forms WordPress plugin before 6.3.1 does not adequately authorize the user or validate the plugin URL in its functionality for installing add-on…
CVE-2023-1405High7.52024-01-16The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gad…
CVE-2024-11188Medium6.12024-11-23The Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form Builder plugin for WordPress is vulnerable to POST-Based Refle…
CVE-2024-0660Medium6.12024-02-05The Formidable Forms – Contact Form, Survey, Quiz, Payment, Calculator Form & Custom Form Builder plugin for WordPress is vulnerable to Cross-Site Request Forg…
CVE-2024-23522Medium5.32024-05-17Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Strategy11 Form Builder Team Formidable Forms allows Code Inject…
CVE-2024-6725Medium4.92024-07-31The Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form Builder plugin for WordPress is vulnerable to Stored Cross-Sit…
CVE-2024-9768Medium4.82024-11-21The Formidable Forms WordPress plugin before 6.14.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to…
CVE-2022-45806Medium4.32024-12-13Missing Authorization vulnerability in Strategy11 Form Builder Team Formidable Forms allows Exploiting Incorrectly Configured Access Control Security Levels.Th…